Lack of Subrecipient Monitoring Activities Finding Type. Immaterial Noncompliance; Significant Deficiency in Internal Controls over Compliance. Federal program(s) U.S. Department of Housing and Urban Development - Home Investment Partnerships Program (ALN 14.239); Direct award and Pass-through: Michigan State Housing Development Authority; All project numbers. Criteria. Under 2 CFR Part 200.332(e), the pass through-entity must monitor the activities of a subrecipient as necessary to ensure that the subrecipient complies with Federal statutes, regulations, and the terms and conditions of the subaward. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. Condition. The County performed financial monitoring procedures during the year and obtained and reviewed subrecipient single audit reports from those subrecipients who were required to have single audits performed under 2 CFR 200 Subpart F. However, the County could not provide evidence that programmatic or performance monitoring to ensure that the stated goals and objectives of the subaward program were achieved during the year, and as such did not comply with all necessary subrecipient monitoring requirements during the year as required in 2 CFR Part 200.332(e). Cause. The County does not have the proper internal controls in place to ensure all aspects of subrecipient monitoring were performed in accordance with the requirements of the Uniform Guidance. Effect. The County did not follow all federal requirements for subrecipient monitoring and as a result has not completed all monitoring requirements for pass-through entities. Questioned Costs. None. Recommendation. We recommend that the County review its procedures for subrecipient monitoring to ensure compliance with Uniform Guidance. In the past, the County has had established procedures which included desk reviews and documented program monitoring of subrecipient programs, and it appears that not all of those procedures have remained in place due to staff turnover. The County should review, update, and implement procedures to ensure that those required elements of internal control are carried out by the responsible County department.
2024-001 Research and Development Cluster – Education Innovation and Research (formerly Investing in Innovation (i3) Fund – Validation Grants) Assistance Listing No. 84.411A Criteria: 2 CFR 200.332 notes, “All pass-through entities must: (a) Ensure that every subaward is clearly identified to the subrecipient as a subaward and includes the following information at the time of the subaward and if any of these data elements change, include the changes in subsequent subaward modification. When some of this information is not available, the pass-through entity must provide the best information available to describe the Federal award and subaward. Required information includes: (1) Federal award identification. (i) Subrecipient name (which must match the name associated with its unique entity identifier); (ii) Subrecipient's unique entity identifier; (iii) Federal Award Identification Number (FAIN); (iv) Federal Award Date (see the definition of Federal award date in § 200.1 of this part) of award to the recipient by the Federal agency; (v) Subaward Period of Performance Start and End Date; (vi) Subaward Budget Period Start and End Date; (vii) Amount of Federal Funds Obligated by this action by the pass-through entity to the subrecipient; (viii) Total Amount of Federal Funds Obligated to the subrecipient by the pass-through entity including the current financial obligation; (ix) Total Amount of the Federal Award committed to the subrecipient by the pass-through entity; (x) Federal award project description, as required to be responsive to the Federal Funding Accountability and Transparency Act (FFATA); (xi) Name of Federal awarding agency, pass-through entity, and contact information for awarding official of the Pass-through entity; (xii) Assistance Listings number and Title; the pass-through entity must identify the dollar amount made available under each Federal award and the Assistance Listings Number at time of disbursement; (xiii) Identification of whether the award is R&D; and (xiv) Indirect cost rate for the Federal award (including if the de minimis rate is charged) per § 200.414. (2) All requirements imposed by the pass-through entity on the subrecipient so that the Federal award is used in accordance with Federal statutes, regulations and the terms and conditions of the Federal award; …” Condition: For both subawards selected for testing, the identification of the contact information for the awarding agency was incorrect. The contact information was Education Analytics, Inc., the Organization’s grantor, but should have been Future Forward, Inc. Further, one of the two subawards selected for testing had information missing from the subaward including all requirements for the award to be used in accordance with Federal statutes, regulations and terms and conditions of the Federal award. We consider this condition to be an instance of noncompliance relating to the Subrecipient Monitoring compliance requirement. Statistical sampling was not used in making sample selections. Questioned Costs: N/A Cause and Effect: Without communication of the required information, subrecipients may overspend award amounts or incur unallowable expenses towards the grant as well as report the incorrect grantor on their schedule of expenditures of federal awards. Recommendation: We recommend the Organization evaluates policies and procedures to ensure all required information is communicated with the subrecipient. Views of Responsible Officials: Management agrees with this Single Audit Finding and response is included in the Corrective Action Plan.
2024-002 Significant Deficiency in Internal Control and Compliance over Major Programs Funding Agency: Department of Treasury ALN: 21.027 Criteria Internal controls and other compliance knowledge should provide adequate subrecipient monitoring under federal awards. Per 2 CFR 200.332(d), pass-through entities should "monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations and the terms and conditions of the subaward; and that subaward performance goals are achieved." This would include site monitoring visits during the grant's period of performance. Condition The Organization provided funds to subrecipients under its direct award from the Department of Treasury. Payments to subrecipients are made on a reimbursement basis. Context During our subrecipient monitoring testing, we noted one of the three subrecipients tested did not receive a site visit during the grant agreement period. Per our discussion with management, the Organization was unable to schedule a monitoring visit during the grant agreement period. The Organization was also unable to provide sufficient documentation that supported adequate monitoring activities were in place during the grant agreement period. Cause The error was caused by the Organization's negligence to conduct any monitoring activity during the grant agreement period. Effect Unallowable activities or cost principles could be charged to the Department of Treasury. Repeat Finding No.Auditor's Recommendation It is recommended that the Organization reevaluates its internal controls over subrecipient monitoring to ensure that proper monitoring is occurring during the grant agreement period. The Organization should also consider who is responsible for the monitoring activity, and if necessary, assign those responsibilities to an employee who has a more flexible schedule that can accommodate the scheduled monitoring visits.
2024-002 Significant Deficiency in Internal Control and Compliance over Major Programs Funding Agency: Department of Treasury ALN: 21.027 Criteria Internal controls and other compliance knowledge should provide adequate subrecipient monitoring under federal awards. Per 2 CFR 200.332(d), pass-through entities should "monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations and the terms and conditions of the subaward; and that subaward performance goals are achieved." This would include site monitoring visits during the grant's period of performance. Condition The Organization provided funds to subrecipients under its direct award from the Department of Treasury. Payments to subrecipients are made on a reimbursement basis. Context During our subrecipient monitoring testing, we noted one of the three subrecipients tested did not receive a site visit during the grant agreement period. Per our discussion with management, the Organization was unable to schedule a monitoring visit during the grant agreement period. The Organization was also unable to provide sufficient documentation that supported adequate monitoring activities were in place during the grant agreement period. Cause The error was caused by the Organization's negligence to conduct any monitoring activity during the grant agreement period. Effect Unallowable activities or cost principles could be charged to the Department of Treasury. Repeat Finding No.Auditor's Recommendation It is recommended that the Organization reevaluates its internal controls over subrecipient monitoring to ensure that proper monitoring is occurring during the grant agreement period. The Organization should also consider who is responsible for the monitoring activity, and if necessary, assign those responsibilities to an employee who has a more flexible schedule that can accommodate the scheduled monitoring visits.
2024-002 Significant Deficiency in Internal Control and Compliance over Major Programs Funding Agency: Department of Treasury ALN: 21.027 Criteria Internal controls and other compliance knowledge should provide adequate subrecipient monitoring under federal awards. Per 2 CFR 200.332(d), pass-through entities should "monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations and the terms and conditions of the subaward; and that subaward performance goals are achieved." This would include site monitoring visits during the grant's period of performance. Condition The Organization provided funds to subrecipients under its direct award from the Department of Treasury. Payments to subrecipients are made on a reimbursement basis. Context During our subrecipient monitoring testing, we noted one of the three subrecipients tested did not receive a site visit during the grant agreement period. Per our discussion with management, the Organization was unable to schedule a monitoring visit during the grant agreement period. The Organization was also unable to provide sufficient documentation that supported adequate monitoring activities were in place during the grant agreement period. Cause The error was caused by the Organization's negligence to conduct any monitoring activity during the grant agreement period. Effect Unallowable activities or cost principles could be charged to the Department of Treasury. Repeat Finding No.Auditor's Recommendation It is recommended that the Organization reevaluates its internal controls over subrecipient monitoring to ensure that proper monitoring is occurring during the grant agreement period. The Organization should also consider who is responsible for the monitoring activity, and if necessary, assign those responsibilities to an employee who has a more flexible schedule that can accommodate the scheduled monitoring visits.
2024-002 Significant Deficiency in Internal Control and Compliance over Major Programs Funding Agency: Department of Treasury ALN: 21.027 Criteria Internal controls and other compliance knowledge should provide adequate subrecipient monitoring under federal awards. Per 2 CFR 200.332(d), pass-through entities should "monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations and the terms and conditions of the subaward; and that subaward performance goals are achieved." This would include site monitoring visits during the grant's period of performance. Condition The Organization provided funds to subrecipients under its direct award from the Department of Treasury. Payments to subrecipients are made on a reimbursement basis. Context During our subrecipient monitoring testing, we noted one of the three subrecipients tested did not receive a site visit during the grant agreement period. Per our discussion with management, the Organization was unable to schedule a monitoring visit during the grant agreement period. The Organization was also unable to provide sufficient documentation that supported adequate monitoring activities were in place during the grant agreement period. Cause The error was caused by the Organization's negligence to conduct any monitoring activity during the grant agreement period. Effect Unallowable activities or cost principles could be charged to the Department of Treasury. Repeat Finding No.Auditor's Recommendation It is recommended that the Organization reevaluates its internal controls over subrecipient monitoring to ensure that proper monitoring is occurring during the grant agreement period. The Organization should also consider who is responsible for the monitoring activity, and if necessary, assign those responsibilities to an employee who has a more flexible schedule that can accommodate the scheduled monitoring visits.
2024-002 Significant Deficiency in Internal Control and Compliance over Major Programs Funding Agency: Department of Treasury ALN: 21.027 Criteria Internal controls and other compliance knowledge should provide adequate subrecipient monitoring under federal awards. Per 2 CFR 200.332(d), pass-through entities should "monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations and the terms and conditions of the subaward; and that subaward performance goals are achieved." This would include site monitoring visits during the grant's period of performance. Condition The Organization provided funds to subrecipients under its direct award from the Department of Treasury. Payments to subrecipients are made on a reimbursement basis. Context During our subrecipient monitoring testing, we noted one of the three subrecipients tested did not receive a site visit during the grant agreement period. Per our discussion with management, the Organization was unable to schedule a monitoring visit during the grant agreement period. The Organization was also unable to provide sufficient documentation that supported adequate monitoring activities were in place during the grant agreement period. Cause The error was caused by the Organization's negligence to conduct any monitoring activity during the grant agreement period. Effect Unallowable activities or cost principles could be charged to the Department of Treasury. Repeat Finding No.Auditor's Recommendation It is recommended that the Organization reevaluates its internal controls over subrecipient monitoring to ensure that proper monitoring is occurring during the grant agreement period. The Organization should also consider who is responsible for the monitoring activity, and if necessary, assign those responsibilities to an employee who has a more flexible schedule that can accommodate the scheduled monitoring visits.
Subrecipient Monitoring Prior Year Finding Number: N/A Year of Finding Origination: 2024 Type of Finding: Internal Control Over Compliance and Compliance Severity of Deficiency: Significant Deficiency and Other Matter Federal Agency: U.S. Department of the Treasury Program: 21.027 COVID-19 – Coronavirus State and Local Fiscal Recovery Funds Award Number and Year: SLT0790; 2021 Pass-Through Agency: N/A – Direct Criteria: Title 2 U.S. Code of Federal Regulations § 200.303 states that the auditee must establish and maintain effective internal control over the federal award that provides reasonable assurance that the auditee is managing the federal award in compliance with federal statutes, regulations, and the terms and conditions of the federal award. Title 2 U.S. Code of Federal Regulations § 200.332 includes requirements such as evaluating the subrecipient’s risk of noncompliance with federal statutes, regulations, and the terms and conditions of the award. Condition: The City did not have documentation of risk assessment procedures performed for two of the four subrecipients tested. Questioned Costs: None. Context: The City of Minneapolis has documented the subaward and subrecipient procedures that its staff are expected to follow. These procedures include the completion of a pre-award risk assessment form and for the form to be maintained in the contract file of the subrecipient. The sample size was based on guidance from Chapter 11 of the AICPA Audit Guide, Government Auditing Standards and Single Audits. Effect: The City is not in compliance with federal regulations. Cause: City staff were not aware of the requirement to perform pre-award risk assessments with subrecipients. Recommendation: We recommend the City ensure that the City’s employees follow its procedures for completing risk assessments when contracting with subrecipients. View of Responsible Official: Concur
Criteria: 2 CFR 200.332 establishes requirements for pass-through entities. Included in these requirements is to monitor the activities of a subrecipient as necessary to ensure that the subrecipient complies with Federal statutes, regulations, and the terms and conditions of the subaward. Condition: The City did have procedures in place to monitor allowable costs and activities of its subrecipients. However, while conducting a review of expenditures through the monitoring of the Appalachia Community Grant (ACG), the Ohio Department of Development (ODOD), noted that a subrecipient of the City had made unallowable expenditures for the grant. This demonstrates a control weakness in the subrecipient monitoring controls conducted by the City. Context: The City, ODOD, and the subrecipient are working on a way to recover any questioned costs associated with this and these do not represent questioned costs of the City. Effect: There is a significant deficiency in the subrecipient monitoring controls of the City that could allow future unallowable costs or activities at subrecipients, if not improved. Recommendation: We recommend that the City implement stronger monitoring controls including vendor verification and review of invoices for the draw down requests that they receive from their subrecipients.
FINDING 2024-001 Subject: COVID-19 - Coronavirus State and Local Fiscal Recovery Funds - Subrecipient Monitoring Federal Agency: Department of the Treasury Federal Program: COVID-19 - Coronavirus State and Local Fiscal Recovery Funds Assistance Listings Number: 21.027 Federal Award Number and Year (or Other Identifying Number): FY2024 Compliance Requirement: Subrecipient Monitoring Audit Findings: Material Weakness, Other Matters INDIANA STATE BOARD OF ACCOUNTS 13 HANCOCK COUNTY SCHEDULE OF FINDINGS AND QUESTIONED COSTS (Continued) Condition and Context The County received an allocation of the COVID-19 - State and Local Fiscal Recovery Funds (SLFRF) from the U.S. Department of the Treasury to support its response and recovery from the novel coronavirus. A portion of the County's allocation was then used to subaward funds to another entity (i.e., the subrecipient) to carry out an eligible use. The subaward was provided to the subrecipient via two different subaward agreements. Both subaward agreements were selected for testing. The County, as the pass-through entity, is to clearly identify the subaward and the terms and conditions of the award in the agreement with the subrecipient. During review of the two subaward agreements, it was determined that the Assistance Listings Number (ALN) and Federal Award Identification Number (FAIN) were not included as required. Additionally, the County as the pass-through entity, is to monitor the activities of the subrecipient to ensure that the subaward is used for authorized purposes in compliance with federal statutes, regulations, and terms and conditions of the subaward and that performance goals are achieved. Part of the monitoring requirements include verifying the subrecipient received an audit as required so as to be able to issue management decisions on any findings, as applicable. The County did not have a process in place to obtain and review audits received by the subrecipient. Therefore, the County would not have been able to issue management decisions or ensure timely and appropriate action by the subrecipient. The lack of internal controls and noncompliance were systemic throughout the audit period. Criteria 2 CFR 200.303 states in part: "The non-Federal entity must: "(a) Establish and maintain effective internal control over the Federal award that provides reasonable assurance that the non-Federal entity is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should be in compliance with guidance in 'Standards for Internal Control in the Federal Government' issued by the Comptroller General of the United States or the 'Internal Control Integrated Framework', issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). . . ." 2 CFR 200.332 states in part: "All pass-through entities must: (a) Ensure that every subaward is clearly identified to the subrecipient as a subaward and includes the following information at the time of the subaward and if any of these data elements change, include the changes in subsequent subaward modification. When some of this information is not available, the pass-through entity must provide the best information available to describe the Federal award and subaward. Required information includes: (1) Federal award identification. (i) Subrecipient name (which must match the name associated with its unique entity identifier); INDIANA STATE BOARD OF ACCOUNTS 14 HANCOCK COUNTY SCHEDULE OF FINDINGS AND QUESTIONED COSTS (Continued) (ii) Subrecipient's unique entity identifier; (iii) Federal Award Identification Number (FAIN); (iv) Federal Award Date . . . of award to the recipient by the Federal agency; (v) Subaward Period of Performance Start and End Date; (vi) Subaward Budget Period Start and End Date; (vii) Amount of Federal Funds Obligated by this action by the pass-through entity to the subrecipient; (viii) Total Amount of Federal Funds Obligated to the subrecipient by the passthrough entity including the current financial obligation; (ix) Total Amount of the Federal Award committed to the subrecipient by the pass-through entity; (x) Federal award project description, as required to be responsive to the Federal Funding Accountability and Transparency Act (FFATA); (xi) Name of Federal agency, pass-through entity, and contact information for awarding official of the Pass-through entity; (xii) Assistance Listings number and Title; the pass-through entity must identify the dollar amount made available under each Federal award and the Assistance Listings Number at time of disbursement; (xiii) Identification of whether the award is R & D; and (xiv) Indirect cost rate for the Federal award (including if the de minimis rate is used charged) per § 200.414. . . . (g) Consider whether the results of the subrecipient's audits, on-site reviews, or other monitoring indicate conditions that necessitate adjustments to the pass-through entity's own records. (h) Consider taking enforcement action against noncompliant subrecipients as described in § 200.339 of this part and in program regulations." Cause The County did not have adequate processes or procedures in place to ensure all of the proper information about the grant was provided to the subrecipient and all required monitoring activities were being conducted. Effect Not providing award identification information to subrecipients could result in the subrecipient not properly reporting the grant on their Schedule of Expenditures of Federal Awards. Furthermore, due to the absence of policies and procedures to monitor the activities of subrecipients, subrecipients could be spending federal funds for unauthorized purposes without the County's knowledge. As such, the County cannot ensure proper accountability and compliance with the program requirements. INDIANA STATE BOARD OF ACCOUNTS 15 HANCOCK COUNTY SCHEDULE OF FINDINGS AND QUESTIONED COSTS (Continued) Questioned Costs There were no questioned costs identified. Recommendation We recommended that the County strengthen its system of internal controls to ensure that the County verifies that all subrecipients of federal awards receive an audit and that the County receives and reviews any audit reports of the subrecipients. Additionally, we recommended that the County strengthen its system of internal controls to ensure that subaward agreements include all required information that should be known to the subrecipient. Views of Responsible Officials For the views of responsible officials, refer to the Corrective Action Plan that is part of this report.
Criteria or specific requirement: Per 2 CFR 200.303(a), the County must establish and maintain effective internal control over the Federal award that provides reasonable assurance that it is managing the federal award in compliance with federal statutes, regulations, and the terms and conditions of the federal award. These internal controls should be in compliance with guidance in the ”Standards for Internal Control in the Federal Government” issued by the Comptroller General of the Untied States or the “Internal Control Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO).Under Uniform Grant Guidance, the County must: • Ensure that every subaward is clearly identified to the subrecipient as a subaward and includes certain required information including but not limited to: Federal and subaward information, indirect cost rate, and the subrecipient’s unique entity identifier (UEI). (2 CFR 200.332 (b)) • Evaluate each subrecipient’s fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring. (2 CFR 200.332 (c)) • Monitor the activities of a subrecipient as necessary to ensure that the subrecipient complies with Federal statutes, regulations, and the terms and conditions of the subaward. (2 CFR 200.332 (e)) • Verify that a subrecipient is audited as required by 2 CFR 200.501. (2 CFR 200.332 (g))Condition: Subaward agreement was expired and did not include all required information, nor did the subrecipient have the required UEI. Subaward requirements were not communicated to the subrecipient; therefore, monitoring activities were not effective. Documentation of subrecipient risk assessment or audit verification not available for audit.Questioned Costs: None noted.Context: Audit procedures included testing of the one subrecipient who received a subaward during the year. There were no other subrecipients.Cause: The County’s procedures were not sufficient to ensure the subawards were issued or monitored in compliance with Federal requirements. Internal controls did not prevent or detect the errors.Effect: Failure to properly document required contract information, perform the necessary risk assessments, and document the review of the subrecipient’s single audit may result in noncompliance with grant terms and conditions. Subrecipients may have incomplete Schedules of Expenditures of Federal Awards, and federal funds may not be properly audited at the subrecipient level in accordance with the Uniform Guidance.
Federal Program Name: Research and Development Cluster: Uniformed Services University Medical Research Projects Federal Agency: U.S. Department of Defense Federal Assistance Listing Number: 12.750 Criteria or Specific Requirement: Subrecipient Monitoring Condition: During testing of subrecipient monitoring, it was noted that the Organization awarded three awards to subrecipients during the year and did not inform these subrecipients of the federal nature of the award at the time of the subaward. Specifically, the required federal award information was not included in the subaward documentation. Effect: Failure to communicate the federal nature of the award may result in subrecipients not being aware of their responsibilities under federal regulations, which could lead to noncompliance with federal requirements. Questioned Costs: None Context: In accordance with 2 CFR section 200.332(a), pass-through entities are required to clearly identify to the subrecipient the federal award information at the time of the subaward. This includes the federal award identification number, the federal awarding agency, the assistance listing number (ALN), and the amount of federal funds obligated. This information was not communicated to the subrecipients Cause: The Organization did not have adequate procedures in place to ensure that all required federal award information was communicated to subrecipients. Repeat Finding: No Recommendation: We recommend that the Organization implement procedures to ensure that all required federal award information is included in subaward agreements and communicated to subrecipients at the time of the award. Views of Responsible Officials and Planned Corrective Action: The Organization agrees with the comment and will revise policies to communicate all required federal award information to subrecipients.
Federal Program Name: Research and Development Cluster: Uniformed Services University Medical Research Projects Federal Agency: U.S. Department of Defense Federal Assistance Listing Number: 12.750 Criteria or Specific Requirement: Subrecipient Monitoring Condition: During testing of subrecipient monitoring, it was noted that the Organization awarded three awards to subrecipients during the year and did not inform these subrecipients of the federal nature of the award at the time of the subaward. Specifically, the required federal award information was not included in the subaward documentation. Effect: Failure to communicate the federal nature of the award may result in subrecipients not being aware of their responsibilities under federal regulations, which could lead to noncompliance with federal requirements. Questioned Costs: None Context: In accordance with 2 CFR section 200.332(a), pass-through entities are required to clearly identify to the subrecipient the federal award information at the time of the subaward. This includes the federal award identification number, the federal awarding agency, the assistance listing number (ALN), and the amount of federal funds obligated. This information was not communicated to the subrecipients Cause: The Organization did not have adequate procedures in place to ensure that all required federal award information was communicated to subrecipients. Repeat Finding: No Recommendation: We recommend that the Organization implement procedures to ensure that all required federal award information is included in subaward agreements and communicated to subrecipients at the time of the award. Views of Responsible Officials and Planned Corrective Action: The Organization agrees with the comment and will revise policies to communicate all required federal award information to subrecipients.
Federal Program Name: Research and Development Cluster: Uniformed Services University Medical Research Projects Federal Agency: U.S. Department of Defense Federal Assistance Listing Number: 12.750 Criteria or Specific Requirement: Subrecipient Monitoring Condition: During testing of subrecipient monitoring, it was noted that the Organization awarded three awards to subrecipients during the year and did not inform these subrecipients of the federal nature of the award at the time of the subaward. Specifically, the required federal award information was not included in the subaward documentation. Effect: Failure to communicate the federal nature of the award may result in subrecipients not being aware of their responsibilities under federal regulations, which could lead to noncompliance with federal requirements. Questioned Costs: None Context: In accordance with 2 CFR section 200.332(a), pass-through entities are required to clearly identify to the subrecipient the federal award information at the time of the subaward. This includes the federal award identification number, the federal awarding agency, the assistance listing number (ALN), and the amount of federal funds obligated. This information was not communicated to the subrecipients Cause: The Organization did not have adequate procedures in place to ensure that all required federal award information was communicated to subrecipients. Repeat Finding: No Recommendation: We recommend that the Organization implement procedures to ensure that all required federal award information is included in subaward agreements and communicated to subrecipients at the time of the award. Views of Responsible Officials and Planned Corrective Action: The Organization agrees with the comment and will revise policies to communicate all required federal award information to subrecipients.
Federal Program Name: Research and Development Cluster: Uniformed Services University Medical Research Projects Federal Agency: U.S. Department of Defense Federal Assistance Listing Number: 12.750 Criteria or Specific Requirement: Subrecipient Monitoring Condition: During testing of subrecipient monitoring, it was noted that the Organization awarded three awards to subrecipients during the year and did not inform these subrecipients of the federal nature of the award at the time of the subaward. Specifically, the required federal award information was not included in the subaward documentation. Effect: Failure to communicate the federal nature of the award may result in subrecipients not being aware of their responsibilities under federal regulations, which could lead to noncompliance with federal requirements. Questioned Costs: None Context: In accordance with 2 CFR section 200.332(a), pass-through entities are required to clearly identify to the subrecipient the federal award information at the time of the subaward. This includes the federal award identification number, the federal awarding agency, the assistance listing number (ALN), and the amount of federal funds obligated. This information was not communicated to the subrecipients Cause: The Organization did not have adequate procedures in place to ensure that all required federal award information was communicated to subrecipients. Repeat Finding: No Recommendation: We recommend that the Organization implement procedures to ensure that all required federal award information is included in subaward agreements and communicated to subrecipients at the time of the award. Views of Responsible Officials and Planned Corrective Action: The Organization agrees with the comment and will revise policies to communicate all required federal award information to subrecipients.
Finding 2024 – 002: Subrecipient Monitoring Significant Deficiency Federal Program: USAID Foreign Assistance for Program Overseas (ALN 98.001) Federal Awarding Agency: United States Agency for International Development Awards: • Direct award: Resilient Coastal Community – 72065622CA00010 • Direct award: Urban Sanitation Activity – 72068724CA00001 • Pass-Through from UC Davis – A23-3500-S001 • Pass-Through from Project Concern International – PCI-1203-SG-1600 • Direct award: Reducing Post Harvest Losses through Access to New Technologies - 720BHA22CA00020 Criteria: 2 CFR 200.332 lists requirements for pass-through entities to perform as part of the subrecipient monitoring compliance requirement. This includes performing an evaluation of fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring procedures. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. 2 CFR 200.303 states that a receipt or subrecipient of federal awards must establish, document, and maintain effective internal control over the Federal award that provides reasonable assurance that the recipient or subrecipient is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should align with the guidance in “Standards for Internal Control in the Federal Government” issued by the Comptroller General of the United States or the “Internal Control-Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). Condition: Weaknesses were found in federal subrecipient controls and monitoring during 2024. Context: For each of the six subrecipients selected for testing, the documentation within the 2024 monitoring tracker tool was incomplete, as certain monitoring procedures conducted were not fully recorded and reviewed in the tracker as required by iDE policies. Additionally, one subrecipient underwent a site visit that was not formally documented in a monitoring visit report, resulting in the absence of any record indicating a review had occurred. Overall, subrecipient risk assessments were inconsistently evaluated, leading to insufficient focus on high-risk subrecipients relative to those considered low risk. Cause: Employee turnover and personnel constraints. Effect: Inadequate procedures and controls for subrecipient monitoring may result in noncompliance with applicable federal statutes, regulations, or award terms and conditions. Questioned costs: None Repeat finding? No Recommendation: Management may consider reviewing existing controls over subrecipient monitoring to evaluate their effectiveness in supporting iDE's compliance with 2 CFR 200 requirements. Views of Responsible Officials: Management agrees with the finding. See corrective action plan.
Finding 2024 – 002: Subrecipient Monitoring Significant Deficiency Federal Program: USAID Foreign Assistance for Program Overseas (ALN 98.001) Federal Awarding Agency: United States Agency for International Development Awards: • Direct award: Resilient Coastal Community – 72065622CA00010 • Direct award: Urban Sanitation Activity – 72068724CA00001 • Pass-Through from UC Davis – A23-3500-S001 • Pass-Through from Project Concern International – PCI-1203-SG-1600 • Direct award: Reducing Post Harvest Losses through Access to New Technologies - 720BHA22CA00020 Criteria: 2 CFR 200.332 lists requirements for pass-through entities to perform as part of the subrecipient monitoring compliance requirement. This includes performing an evaluation of fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring procedures. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. 2 CFR 200.303 states that a receipt or subrecipient of federal awards must establish, document, and maintain effective internal control over the Federal award that provides reasonable assurance that the recipient or subrecipient is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should align with the guidance in “Standards for Internal Control in the Federal Government” issued by the Comptroller General of the United States or the “Internal Control-Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). Condition: Weaknesses were found in federal subrecipient controls and monitoring during 2024. Context: For each of the six subrecipients selected for testing, the documentation within the 2024 monitoring tracker tool was incomplete, as certain monitoring procedures conducted were not fully recorded and reviewed in the tracker as required by iDE policies. Additionally, one subrecipient underwent a site visit that was not formally documented in a monitoring visit report, resulting in the absence of any record indicating a review had occurred. Overall, subrecipient risk assessments were inconsistently evaluated, leading to insufficient focus on high-risk subrecipients relative to those considered low risk. Cause: Employee turnover and personnel constraints. Effect: Inadequate procedures and controls for subrecipient monitoring may result in noncompliance with applicable federal statutes, regulations, or award terms and conditions. Questioned costs: None Repeat finding? No Recommendation: Management may consider reviewing existing controls over subrecipient monitoring to evaluate their effectiveness in supporting iDE's compliance with 2 CFR 200 requirements. Views of Responsible Officials: Management agrees with the finding. See corrective action plan.
Finding 2024 – 002: Subrecipient Monitoring Significant Deficiency Federal Program: USAID Foreign Assistance for Program Overseas (ALN 98.001) Federal Awarding Agency: United States Agency for International Development Awards: • Direct award: Resilient Coastal Community – 72065622CA00010 • Direct award: Urban Sanitation Activity – 72068724CA00001 • Pass-Through from UC Davis – A23-3500-S001 • Pass-Through from Project Concern International – PCI-1203-SG-1600 • Direct award: Reducing Post Harvest Losses through Access to New Technologies - 720BHA22CA00020 Criteria: 2 CFR 200.332 lists requirements for pass-through entities to perform as part of the subrecipient monitoring compliance requirement. This includes performing an evaluation of fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring procedures. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. 2 CFR 200.303 states that a receipt or subrecipient of federal awards must establish, document, and maintain effective internal control over the Federal award that provides reasonable assurance that the recipient or subrecipient is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should align with the guidance in “Standards for Internal Control in the Federal Government” issued by the Comptroller General of the United States or the “Internal Control-Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). Condition: Weaknesses were found in federal subrecipient controls and monitoring during 2024. Context: For each of the six subrecipients selected for testing, the documentation within the 2024 monitoring tracker tool was incomplete, as certain monitoring procedures conducted were not fully recorded and reviewed in the tracker as required by iDE policies. Additionally, one subrecipient underwent a site visit that was not formally documented in a monitoring visit report, resulting in the absence of any record indicating a review had occurred. Overall, subrecipient risk assessments were inconsistently evaluated, leading to insufficient focus on high-risk subrecipients relative to those considered low risk. Cause: Employee turnover and personnel constraints. Effect: Inadequate procedures and controls for subrecipient monitoring may result in noncompliance with applicable federal statutes, regulations, or award terms and conditions. Questioned costs: None Repeat finding? No Recommendation: Management may consider reviewing existing controls over subrecipient monitoring to evaluate their effectiveness in supporting iDE's compliance with 2 CFR 200 requirements. Views of Responsible Officials: Management agrees with the finding. See corrective action plan.
Finding 2024 – 002: Subrecipient Monitoring Significant Deficiency Federal Program: USAID Foreign Assistance for Program Overseas (ALN 98.001) Federal Awarding Agency: United States Agency for International Development Awards: • Direct award: Resilient Coastal Community – 72065622CA00010 • Direct award: Urban Sanitation Activity – 72068724CA00001 • Pass-Through from UC Davis – A23-3500-S001 • Pass-Through from Project Concern International – PCI-1203-SG-1600 • Direct award: Reducing Post Harvest Losses through Access to New Technologies - 720BHA22CA00020 Criteria: 2 CFR 200.332 lists requirements for pass-through entities to perform as part of the subrecipient monitoring compliance requirement. This includes performing an evaluation of fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring procedures. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. 2 CFR 200.303 states that a receipt or subrecipient of federal awards must establish, document, and maintain effective internal control over the Federal award that provides reasonable assurance that the recipient or subrecipient is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should align with the guidance in “Standards for Internal Control in the Federal Government” issued by the Comptroller General of the United States or the “Internal Control-Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). Condition: Weaknesses were found in federal subrecipient controls and monitoring during 2024. Context: For each of the six subrecipients selected for testing, the documentation within the 2024 monitoring tracker tool was incomplete, as certain monitoring procedures conducted were not fully recorded and reviewed in the tracker as required by iDE policies. Additionally, one subrecipient underwent a site visit that was not formally documented in a monitoring visit report, resulting in the absence of any record indicating a review had occurred. Overall, subrecipient risk assessments were inconsistently evaluated, leading to insufficient focus on high-risk subrecipients relative to those considered low risk. Cause: Employee turnover and personnel constraints. Effect: Inadequate procedures and controls for subrecipient monitoring may result in noncompliance with applicable federal statutes, regulations, or award terms and conditions. Questioned costs: None Repeat finding? No Recommendation: Management may consider reviewing existing controls over subrecipient monitoring to evaluate their effectiveness in supporting iDE's compliance with 2 CFR 200 requirements. Views of Responsible Officials: Management agrees with the finding. See corrective action plan.
Finding 2024 – 002: Subrecipient Monitoring Significant Deficiency Federal Program: USAID Foreign Assistance for Program Overseas (ALN 98.001) Federal Awarding Agency: United States Agency for International Development Awards: • Direct award: Resilient Coastal Community – 72065622CA00010 • Direct award: Urban Sanitation Activity – 72068724CA00001 • Pass-Through from UC Davis – A23-3500-S001 • Pass-Through from Project Concern International – PCI-1203-SG-1600 • Direct award: Reducing Post Harvest Losses through Access to New Technologies - 720BHA22CA00020 Criteria: 2 CFR 200.332 lists requirements for pass-through entities to perform as part of the subrecipient monitoring compliance requirement. This includes performing an evaluation of fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring procedures. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. 2 CFR 200.303 states that a receipt or subrecipient of federal awards must establish, document, and maintain effective internal control over the Federal award that provides reasonable assurance that the recipient or subrecipient is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should align with the guidance in “Standards for Internal Control in the Federal Government” issued by the Comptroller General of the United States or the “Internal Control-Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). Condition: Weaknesses were found in federal subrecipient controls and monitoring during 2024. Context: For each of the six subrecipients selected for testing, the documentation within the 2024 monitoring tracker tool was incomplete, as certain monitoring procedures conducted were not fully recorded and reviewed in the tracker as required by iDE policies. Additionally, one subrecipient underwent a site visit that was not formally documented in a monitoring visit report, resulting in the absence of any record indicating a review had occurred. Overall, subrecipient risk assessments were inconsistently evaluated, leading to insufficient focus on high-risk subrecipients relative to those considered low risk. Cause: Employee turnover and personnel constraints. Effect: Inadequate procedures and controls for subrecipient monitoring may result in noncompliance with applicable federal statutes, regulations, or award terms and conditions. Questioned costs: None Repeat finding? No Recommendation: Management may consider reviewing existing controls over subrecipient monitoring to evaluate their effectiveness in supporting iDE's compliance with 2 CFR 200 requirements. Views of Responsible Officials: Management agrees with the finding. See corrective action plan.
Finding 2024-004: 10. 761 - U.S. Department of Agriculture - Water and Waste Technical Assistance and Training - Material Weakness Compliance Requirement: Subrecipient Monitoring Criteria: Per Title 2 U.S. Code of Federal Regulations (CFR) Part 200, Subpart D, section 200.332, the non-Federal entity must determine the subrecipient is not excluded or debarred or otherwise excluded from receiving Federal funds, as well as develop written subrecipient monitoring policies and procedures. Condition: During our testing of internal controls over compliance related to subrecipient monitoring, we identified EWB-USA did not have written subrecipient monitoring policies or procedures in place, nor determine that the subrecipient was not suspended or debarred or otherwise excluded from receiving Federal funds. Additionally, EWB-USA did not obtain a copy of the subrecipient's Uniform Guidance compliance audit. Questioned Costs: None. Cause: EWB-USA did not have adequate controls in place to ensure compliance with applicable federal requirements. Effect: EWB-USA was not in compliance with the subrecipient monitoring provisions as prescribed in the Uniform Guidance. Recommendation: We recommend that EWB-USA adopt formal, written subrecipient monitoring policies and procedures the comply with the Uniform Guidance. Response: 1. Develop a policy for subrecipient monitoring, and implement procedures to oversee the programmatic and financial activities of subrecipients and ensure compliance with regulations. 2. Develop a standardized checklist to guide the monitoring of subrecipients. 3. Provide training to relevant staff on the new procedures for subrecipient monitoring and the importance of compliance with federal regulations.
Finding 2024-004: 10. 761 - U.S. Department of Agriculture - Water and Waste Technical Assistance and Training - Material Weakness Compliance Requirement: Subrecipient Monitoring Criteria: Per Title 2 U.S. Code of Federal Regulations (CFR) Part 200, Subpart D, section 200.332, the non-Federal entity must determine the subrecipient is not excluded or debarred or otherwise excluded from receiving Federal funds, as well as develop written subrecipient monitoring policies and procedures. Condition: During our testing of internal controls over compliance related to subrecipient monitoring, we identified EWB-USA did not have written subrecipient monitoring policies or procedures in place, nor determine that the subrecipient was not suspended or debarred or otherwise excluded from receiving Federal funds. Additionally, EWB-USA did not obtain a copy of the subrecipient's Uniform Guidance compliance audit. Questioned Costs: None. Cause: EWB-USA did not have adequate controls in place to ensure compliance with applicable federal requirements. Effect: EWB-USA was not in compliance with the subrecipient monitoring provisions as prescribed in the Uniform Guidance. Recommendation: We recommend that EWB-USA adopt formal, written subrecipient monitoring policies and procedures the comply with the Uniform Guidance. Response: 1. Develop a policy for subrecipient monitoring, and implement procedures to oversee the programmatic and financial activities of subrecipients and ensure compliance with regulations. 2. Develop a standardized checklist to guide the monitoring of subrecipients. 3. Provide training to relevant staff on the new procedures for subrecipient monitoring and the importance of compliance with federal regulations.
2024-001: Internal Control over Compliance with Subrecipient Monitoring and Noncompliance with Subrecipient Monitoring U.S. Department of Health and Human Services; Passed through the State of Tennessee Department of Health: ALN #93.558 Temporary Assistance for Needy Families Federal Award Identification: 68080 Grant Year: 10/1/2020-9/30/2024 Criteria: 2 CFR section 200.332(d) states: Pass-through entity monitoring of the subrecipient must include: (1) Reviewing financial and performance reports required by the pass-through entity. (2) Following-up and ensuring that the subrecipient takes timely and appropriate action on all deficiencies pertaining to the Federal award provided to the subrecipient from the pass-through entity detected through audits, on-site reviews, and written confirmation from the subrecipient, highlighting the status of actions planned or taken to address Single Audit findings related to the particular subaward. (3) Issuing a management decision for applicable audit findings pertaining only to the Federal award provided to the subrecipient from the pass-through entity as required by Section 200-521. Condition and context: The Organization typically requests and reviews subrecipient financial statement audits on an annual basis with annual renewals of contracts. The Temporary Assistance for Needy Families Grant has a three-year grant period. Since subrecipients weren't required to have annual renewals, the Organization did not request or review the annual financial statement audits of subrecipients of this grant. Therefore, the Organization did not comply with the monitoring required by 2CFR section 200.332(d). Cause: The Organization’s internal controls over subrecipient monitoring were not sufficiently designed and implemented to ensure that applicable audits from subrecipients were obtained and reviewed annually. Effect or potential effect: Procedures required by 2 CFR section 200.332(d) related to reviewing financial reports of the subrecipient and following-up on deficiencies pertaining to the Federal award could not completed. The Uniform Guidance audit could have noted findings related to compliance with the spending of the federal assistance that would have been unknown to the Organization. Recommendation: We recommend that the Organization track all subrecipient with federal assistance and establish a process to ensure the financial statement and Uniform Guidance audits are obtained timely and monitoring procedures required by 2 CFR section 200.332(d) are completed. Views of responsible officials: Management acknowledge this finding and will address remediation in the accompanying corrective action plan in Appendix A
Federal Agency: United States Department of Commerce Federal Program Name: Office for Coastal Management Assistance Listing Number: 11.473 Federal Award Identification Year: 2020 Pass-Through Agency: National Fish and Wildlife Grant Agreement Award Period: 9/1/20-08/02/24 Compliance Requirement Affected: Subrecipient Monitoring Type of Finding: Material Weakness in Internal Control over Compliance and Material Noncompliance (Modified Opinion) Criteria: 2 CFR 200.332(d) - establishes that the auditee must monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with Federal statutes, regulations, and the terms and conditions of the subaward; and that subaward performance goals are achieved. Condition: CFSC did not perform risk assessment for all subrecipients selected for testing. CFSC was unable to provide supporting documentation to show that they inquired with the subrecipients about any audits they had undergone or evidence that CFSC received and reviewed audit reports to ensure timely follow ups were made if any findings pertaining to the Federal Award was noted. Context: A nonstatistical sample of 2 out of 4 subrecipients were selected for testing for the Office for Coastal Management program. The condition noted above was identified during our procedures over CFSC’s subrecipients. Effect: CFSC did not perform the following, which increases the risk of noncompliance: -Required risk assessments for the subrecipients, -Review subrecipient audit reports to ensure compliance with Federal Awards or make any necessary follow-ups pertaining to any findings noted, if any. Cause: CFSC’s procedures did not consistently ensure that the required risk assessments were performed. Repeat Finding: The finding is a repeat finding. Recommendation: We recommend that CFSC modify and strengthen its current policies and procedures to ensure that all required risk assessments are performed in accordance with the criteria outlined above. Management’s Views: See separate corrective action plan.
Criteria: Per 2 CFR 200.332, Mesa County is responsible for informing subrecipients of the Federal award identifiers including but not limited to award date, period of performance and Federal awarding agency and Assistance Listing Number and title. Mesa County is required to assess the subrecipient’s risk of noncompliance with Federal statutes, regulations and the terms and conditions of the subaward. In addition, the County should also verify that the subrecipient is audited as required by Subpart F - Audit Requirement under the Uniform Guidance. The monitoring policy should include an initial valuation of risk of noncompliance to determine the appropriate level of monitoring required related to the subaward as well as appropriate awarding documentation. Condition: During our testing, we evaluated the procedures for evaluating subrecipient’s risk of noncompliance with Federal statutes, regulations and the terms and conditions of the subaward. We noted the following: • For two (2) of two (2) subrecipients selected, the required evaluation of the subrecipient’s risk of noncompliance was not documented. Cause: The County did not adhere to their established policies and procedures relating to risk assessment when a subrecipient contract is awarded. Effect: The County’s policies were not consistently followed requiring compliance with the Subrecipient monitoring requirements in 2 CFR 200.332. Additionally, the County’s control policies were not consistently followed. Questioned Costs: None to report. Context/Sampling: The population of two (2) subrecipients were selected for subrecipient monitoring testing for the direct award from the US Department of Treasury. The total population across the program, including sub-awards from the State of Colorado was 2 subrecipients. Repeat Finding from Prior Years: Yes. Recommendation: We recommend that the County adhere to their policies and procedures in accordance with 2 CFR 200.332 to ensure compliance with subrecipient monitoring requirements. Views of Responsible Officials: Agree
Significant deficiency in internal controls over subrecipient monitoring. • Program Title: Substance Abuse Block Grants • Assistance Listing Number: 93.959 • Federal award identification number: B08TI085843 • Federal Agency: Department of Health and Human Services • Pass-through Entity: Washington State Health Care Authority Criteria 2 U.S. Code of Federal Regulations (CFR) 200 Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance) Subpart D section 2 CFR 200.332 requires that a pass-through entity must ensure that every subaward is clearly identified to the subrecipient as a subaward. Condition/Context Washington Association of Sheriffs & Police Chiefs (the Association) passes substantially all federal funding through to subrecipients. During testing it was identified that, although the Association satisfied all ongoing monitoring requirements, on the coversheet of all subrecipient contracts in place during the year, a box indicating that the third party was not a subrecipient was incorrectly checked. This error by default incorrectly communicated to their subrecipients that they were contractors. Cause Washington Association of Sheriffs & Police Chiefs’ internal controls related to the review of subrecipient contracts were not functioning properly causing the pervasive error to be overlooked. Effect or potential effect Subrecipients were not clearly communicated their roles. Questioned costs N/A Repeat audit finding No Recommendation We recommend that Washington Association of Sheriffs & Police Chiefs ensure there is a proper understanding of the nature of a subrecipient vs a contractor, and that they ensure that this determination is being reviewed, and clearly communicated in underlying agreements, as part of their internal control processes Views of responsible officials Management agrees with the finding and has provided the corrective action plan following the Single Audit Report
Criteria: In accordance with 2 CFR 200.332(d), recipients of federal awards who pass funds to subrecipients are required to monitor the activities of subrecipients to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations, and the terms and conditions of the subaward. Required monitoring includes reviewing financial and performance reports, following up on deficiencies, and ensuring timely corrective action is taken. Condition: During the year ended December 31, 2024, FFT passed CSLFRF funds to one subrecipient. FFT did not perform any documented monitoring activities over this subrecipient. Specifically, FFT did not obtain or review financial and performance reports, nor did it conduct site visits, desk reviews, or other monitoring procedures required to ensure compliance with federal regulations. Cause: FFT did not establish formalized subrecipient monitoring procedures for CSLFRF funds, due in part to a misunderstanding of its responsibilities as a pass-through entity and the federal compliance requirements related to subrecipient oversight. Effect: As a result of inadequate subrecipient monitoring, there is an increased risk that subrecipients may have expended federal funds on unallowable costs or failed to comply with CSLFRF program requirements. This deficiency exposes FFT to potential repayment of funds and reputational risk if noncompliance is identified at the subrecipient level. Questioned Cost: No specific questioned costs were identified; however, the total amount of CSLFRF funds passed through to the subrecipients without adequate monitoring was $353,050, which is considered to be at risk of noncompliance. Recommendation: We recommend that FFT establish and implement formal subrecipient monitoring procedures to ensure compliance with 2 CFR 200.332(d). This should include, developing a documented monitoring plan for CSLFRF subrecipients, obtaining and reviewing periodic financial and performance reports from subrecipients, performing documented follow-up on any deficiencies noted, and providing training to responsible staff regarding subrecipient monitoring requirements. Views of Responsible Officials: See 2024 Corrective Action Plan.
2024-002 Finding – Federal Award Type: Subrecipient Monitoring – Non-Compliance and Significant Deficiency in Internal Control Over Compliance. AL Number: 10.163 Market Protection and PromotionCriteria / Requirement: 2 CFR section 200.303 requires that non-federal entities receiving federal awards establish and maintain internal control over the federal awards that provides reasonable assurance that the non-federal entity is managing the federal awards in compliance with federal statutes, regulations, and the terms and conditions of the federal awards. In accordance with 2 CFR section 200.332, a pass-through entity must clearly identify to the subrecipient the award as a subaward by providing the required federal information related to the award, all requirements imposed by the pass-through entity on the subrecipient so that the federal award is used in accordance with federal statutes, regulations, and the provisions of contracts and grants agreements. The pass-through entity must evaluate risk of non-compliance of each subrecipient, monitoring the subrecipient and ensuring accountability of for-profit subrecipients. Condition / Context: Oregon Tilth passed through $1,593,444 in funding to subrecipients under Assistance Listing 10.163. During our audit, we noted that Oregon Tilth did have documented written procedures or controls in place to ensure compliance with the U.S. Office of Management and Budget’s Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance) subrecipient monitoring requirements. It was noted that within subaward contracts, required federal contract information was provided. Further, subrecipients are being evaluated for risk of non-compliance, prior to engaging in a subcontract. While monitoring has improved, as Oregon Tilth is having regular meetings to ensure tasks are being completed timely and providing technical assistance when needed, it was noted that in the sample of five subrecipients, three subrecipient was subject to 2 CFR Subpart F and the audit for this entity was not obtained. Per 2 CFR 200.332(d)(2) & (3), an entity must ensure that the subrecipient takes timely and appropriate action on all deficiencies pertaining to the Federal award provided to the subrecipient from the pass-through entity detected through audits, highlighting the status of action planned or taken to address Single Audit Finding related to the subaward. They must also issue a management decision for applicable audit findings. Further, per 2 CFR 200.332(g), pass-through entities must verify that a subrecipient is audited as required by 2 CFR 200 subpart F. Oregon Tilth did have the subrecipient answer a questionnaire that included a question asking if the subrecipient was subject to 2 CFR 200 subpart F, however they did not obtain the audit or verify in any other way that the client was audited as required by 2 CFR 200 subpart F. Cause: Procedures were in place to ensure that Oregon Tilth is maintaining proper subrecipient monitoring for each federal subrecipient, however the procedures were not fully compliant with 2 CFR 200.332. Effect: Failure to maintain sufficient subrecipient monitoring may result in the wrongful use of federal funds and non‐compliance with the provisions of applicable requirements of the federal award. Questioned Costs: None. Recommendation: The Organization should establish written policies and procedures regarding the contracting and monitoring of subrecipients that are in line with Uniform Guidance requirements, as well as establish organizational controls to ensure that such policies and procedures are being followed. Management’s Response: Management concurs with the finding and will implement effective internal controls to ensure that subrecipient monitoring is properly done and documented appropriately.
Finding 2024-004 – Subrecipient Monitoring U.S. Department of Commerce Economic Development Cluster ALN 11.307 Grantor Number 01-79-15312 Condition: The Organization does not have formal subrecipient monitoring policies and procedures in place to document the assessment of risk for subrecipients. Specifically, there is no documented review of subrecipient financial or performance reports, no formal risk assessments conducted prior to disbursement of funds, and no site visits or other monitoring activities to ensure compliance with award terms and federal regulations. In addition, the Organization does not have procedures in place to adequately review the subrecipient audits received, ensure that audit requirement language is included in each contract, or notify the subrecipient of the subaward ALN and amount that was paid during the year. Criteria of Specific Requirement: Pass-through entities are required to evaluate subrecipient risks of noncompliance as part of their subrecipient monitoring procedures. In addition, 2 CFR 200.332(d) indicates as part of the monitoring process, the pass-through entity should ensure subrecipients are notified of their requirement to receive an audit and take follow-up action on audit deficiencies, which would be identified as part of the review of the annual audit reports of subrecipients and 2 CFR section 200.332(a) required pass-through entities to notify the subrecipient at the time of the subaward of the subaward ALN and amount that was paid during the year. Questioned Costs: Unknown Cause: The Organization does not have procedures in place to document the assessment of risk for subrecipients. In addition, the Organization does not have procedures in place to adequately review all subrecipient audits or notify the subrecipient of the subaward ALN and amount that was paid during the year. Effect: The Organization was not in compliance with subrecipient monitoring requirements. Identification as a Repeat Finding: This is a repeat finding. Recommendation: The Organization should review all contract documents for conditions and terms, and based upon that review, implement procedures to ensure subrecipient monitoring includes proper risk assessment and monitoring of single audit compliance, along with any other grant requirements. Views of Responsible Officials and Planned Corrective Actions: Management agrees; see separate corrective action plan.
Finding 2024-002 Agency: Department of Labor Program: Apprenticeship State Funds (AL No. 17.285) Material Weakness over Subrecipient Monitoring Repeat Finding: No Condition: For all subrecipients of AACC, there was no supporting documentation to show that a risk assessment was performed by the pass-through entity before awarding funds to each subrecipient. Additionally, for monitoring procedures performed AACC used general subrecipient monitoring forms which were all signed in March 2025 which is after the annual monitoring period ending December 31, 2024. The monitoring forms did not include information related to missing support for various subrecipient invoices as noted in finding 2024-001. Additionally, there were no follow-up procedures documented on the forms to ensure corrective action took place. Criteria: As provided in 2 CFR section 200.332: Requirements for pass-through entities, a pass-through entity must evaluate each subrecipient's fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring procedures. Cause: AACC does not have a policy in place to properly document risk assessment of subrecipients before awarding funds to them. AACC does not have a policy in place to ensure all necessary monitoring procedures performed based on its risk assessment are properly documented in a timely manner. Effect: AACC was not in compliance with the Subrecipient Monitoring requirements in accordance with Uniform Guidance. Questioned Costs: Unknown Recommendation: We recommend AACC implements a policy to properly document their assessment of their subrecipients fraud risk and risk of noncompliance to then conclude on satisfactory monitoring procedures. We recommend AACC implements a policy to properly document all necessary monitoring procedures in a timely manner. Auditee Response and Corrective Action Plan: Management agrees with the finding. Refer to the corrective action plan on current findings in Part V of this report.
FINDING 2024-003 Subject: COVID-19 - Coronavirus State and Local Fiscal Recovery Funds - Subrecipient Monitoring Federal Agency: Department of the Treasury Federal Program: COVID-19 - Coronavirus State and Local Fiscal Recovery Funds Assistance Listings Number: 21.027 Federal Award Number and Year (or Other Identifying Number): SLFRP1096 Compliance Requirement: Subrecipient Monitoring Audit Finding: Material Weakness INDIANA STATE BOARD OF ACCOUNTS 19 CITY OF ANDERSON SCHEDULE OF FINDINGS AND QUESTIONED COSTS (Continued) Condition and Context Subrecipients associated with the City's Non-profit, Affordable Housing, and Homeless Initiatives activities funded by the COVID-19 - Coronavirus State and Local Fiscal Recovery Funds were required to submit reports on program activities either quarterly or monthly. The City did not have adequate internal controls in place designed to ensure that these reports were reviewed. Responsibility for reviewing these reports rested primarily with one employee. For two of three subrecipients tested, we were not able to determine that there was a second employee involved that would ensure that the reports submitted by the subrecipients were reviewed by the City. The lack of internal controls was a systemic issue throughout the audit period. Criteria 2 CFR 200.303 states in part: "The non-Federal entity must: (a) Establish and maintain effective internal control over the Federal award that provides reasonable assurance that the non-Federal entity is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should be in compliance with guidance in 'Standards for Internal Control in the Federal Government' issued by the Comptroller General of the United States or the 'Internal Control Integrated Framework', issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). . . ." 2 CFR 200.332 states: "All pass-through entities must: (a) Ensure that every subaward is clearly identified to the subrecipient as a subaward and include the following information at the time of the subaward and if any of these data elements change, include the changes in subsequent subaward notification. When some of this information is not available, the pass-through entity must provide the best information available to describe the Federal award and subaward. Required information includes: (1) Federal award identification. (i) Subrecipient name (which must match the name associated with its unique entity identifier); (ii) Subrecipient's unique entity identifier; (iii) Federal Award Identification Number (FAIN); (iv) Federal Award Date (see the definition of Federal award date in § 200.1 of this part) of award to the recipient by the Federal agency; (v) Subaward Period of Performance Start and End Date; INDIANA STATE BOARD OF ACCOUNTS 20 CITY OF ANDERSON SCHEDULE OF FINDINGS AND QUESTIONED COSTS (Continued) (vi) Subaward Budget Period Start and End Date; (vii) Amount of Federal Funds Obligated by this action by the pass-through entity to the subrecipient; (viii) Total Amount of Federal Funds Obligated to the subrecipient by the passthrough entity including the current financial obligation; (ix) Total Amount of the Federal Award committed to the subrecipient by the passthrough entity; (x) Federal award project description, as required to be responsive to the Federal Funding Accountability and Transparency Act (FFATA); (xi) Name of Federal awarding agency, pass-through entity, and contact information for awarding official of the Pass-through entity; (xii) Assistance Listings number and Title; the pass-through entity must identify the dollar amount made available under each Federal award and the Assistance Listings Number at time of disbursement; (xiii) Identification of whether the award is R&D; and (xiv) Indirect cost rate for the Federal award (including if the de minimis rate is charged) per § 200.414. (2) All requirements imposed by the pass-through entity on the subrecipient so that the Federal award is used in accordance with Federal statutes, regulations and the terms and conditions of the Federal award; (3) Any additional requirements that the pass-through entity imposes on the subrecipient in order for the pass-through entity to meet its own responsibility to the Federal awarding agency including identification of any required financial and performance reports. (4) (i) An approved federally recognized indirect cost rate negotiated between the subrecipient and the Federal Government. If no approved rate exists, the passthrough entity must determine the appropriate rate in collaboration with the subrecipient, which is either: (A) The negotiated indirect cost rate between the pass-through entity and the subrecipient; which can be based on a prior negotiated rate between a different PTE and the same subrecipient. If basing the rate on a previously negotiated rate, the pass through entity is not required to collect information justifying this rate, but may elect to do so; (B) The de minimis indirect cost rate. (ii) The pass-through entity must not require use of a de minimis indirect cost rate if the subrecipient has a Federally approved rate. Subrecipients can elect to use the cost allocation method to account for indirect costs in accordance with § 200.405(d). INDIANA STATE BOARD OF ACCOUNTS 21 CITY OF ANDERSON SCHEDULE OF FINDINGS AND QUESTIONED COSTS (Continued) (5) A requirement that the subrecipient permit the pass-through entity and auditors to have access to the subrecipient's records and financial statements as necessary for the pass-through entity to meet the requirements of this part; and (6) Appropriate terms and conditions concerning closeout of the subaward. . . . (b) Evaluate each subrecipient's risk of noncompliance with Federal statutes, regulations, and the terms and conditions of the subaward for purposes of determining the appropriate subrecipient monitoring described in paragraphs (d) and (e) of this section, which may include consideration of such factors as: (1) The subrecipient's prior experience with the same or similar subawards; (2) The results of previous audits including whether or not the subrecipient receives a Single Audit in accordance with Subpart F of this part, and the extent to which the same or similar subaward has been audited as a major program; (3) Whether the subrecipient has new personnel or new or substantially changed systems; and (4) The extent and results of Federal awarding agency monitoring (e.g., if the subrecipient also receives Federal awards directly from a Federal awarding agency). (c) Consider imposing specific subaward conditions upon a subrecipient if appropriate as described in § 200.208. (d) Monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with Federal statutes, regulations, and the terms and conditions of the subaward; and that subaward performance goals are achieved. Pass-through entity monitoring of the subrecipient must include: (1) Reviewing financial and performance reports required by the pass-through entity. (2) Following-up and ensuring that the subrecipient takes timely and appropriate action on all deficiencies pertaining to the Federal award provided to the subrecipient from the pass-through entity detected through audits, on-site reviews, and written confirmation from the subrecipient, highlighting the status of actions planned or taken to address Single Audit findings related to the particular subaward. (3) Issuing a management decision for applicable audit findings pertaining only to the Federal award provided to the subrecipient from the pass-through entity as required by § 200.521. INDIANA STATE BOARD OF ACCOUNTS 22 CITY OF ANDERSON SCHEDULE OF FINDINGS AND QUESTIONED COSTS (Continued) (4) The pass-through entity is responsible for resolving audit findings specifically related to the subaward and not responsible for resolving crosscutting findings. If a subrecipient has a current Single Audit report posted in the Federal Audit Clearinghouse and has not otherwise been excluded from receipt of Federal funding (e.g., has been debarred or suspended), the pass-through entity may rely on the subrecipient's cognizant audit agency or cognizant oversight agency to perform audit follow-up and make management decisions related to cross-cutting findings in accordance with section § 200.513(a)(3)(vii). Such reliance does not eliminate the responsibility of the pass-through entity to issue subawards that conform to agency and award-specific requirements, to manage risk through ongoing subaward monitoring, and to monitor the status of the findings that are specifically related to the subaward. (e) Depending upon the pass-through entity's assessment of risk posed by the subrecipient (as described in paragraph (b) of this section), the following monitoring tools may be useful for the pass-through entity to ensure proper accountability and compliance with program requirements and achievement of performance goals: (1) Providing subrecipients with training and technical assistance on program related matters; and (2) Performing on-site reviews of the subrecipient's program operations. (3) Arranging for agreed-upon-procedures engagements as described in § 200.425. (f) Verify that every subrecipient is audited as required by Subpart F of this part when it is expected that the subrecipient's Federal awards expended during the respective fiscal year equaled or exceeded the threshold set forth in § 200.501. (g) Consider whether the results of the subrecipient's audits, on-site reviews, or other monitoring indicate conditions that necessitate adjustments to the pass-through entity's own records. (h) Consider taking enforcement action against noncompliant subrecipients as described in § 200.339 of this part and in program regulations." Cause A system of internal controls to include oversite and review of the quarterly or monthly reports prepared by the subrecipients was not in place. One individual was primarily responsible for reviewing the subrecipient reports. Effect Not having procedures in place for oversite and review of the monitoring reports could lead to noncompliance with the requirements for subrecipient monitoring. Noncompliance with the provisions of federal statutes, regulations, and the terms and conditions of the federal award could result in the loss of future federal funding to the City. INDIANA STATE BOARD OF ACCOUNTS 23 CITY OF ANDERSON SCHEDULE OF FINDINGS AND QUESTIONED COSTS (Continued) Questioned Costs There were no questioned costs identified. Recommendation We recommended that management of the City establish a proper system of internal controls to include oversite and review to ensure that the subrecipient report reviews are reviewed/approved by a second party. Views of Responsible Officials For the views of responsible officials, refer to the Corrective Action Plan that is part of this report.
Federal Program – American Rescue Plan Technical Assistance Investment Program – Assistance Listing No. 10.234 – Award No. 2023-70504-40441 – Program Year 2024 – U.S. Department of Agriculture Criteria or specific requirement – Subrecipient Monitoring, 2 CFR 200.332(b), (c) and (e) Condition – The pass-through entity is responsible for identifying the award and applicable requirements to the subrecipient at the time of the subaward providing information described in 2 CFR section 200.332 to ensure the subrecipient uses the federal award in accordance with federal statues, regulations, and the terms and conditions of the award. The pass-through entity is responsible for evaluating each subrecipient’s risk of noncompliance for purposes of determining appropriate subrecipient monitoring. The pass-through entity is responsible for monitoring the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, complies with the terms and conditions of the subaward, and achieves performance goals. Cause – While the organization did perform certain monitoring procedures, the organization did not have sufficient controls in place to ensure agreements with subrecipients were in compliance with requirements as well as to ensure appropriate monitoring of the subrecipients’ use of funding in accordance with 2 CFR section 200.332. Effect – The organization failed to have agreements with subrecipients that were inclusive of all applicable requirements outlined within 2 CFR section 200.332. The organization did not have sufficient procedures to appropriately monitor the subrecipients’ use of funds within the reporting period. Questioned costs – N/A Context – Out of a population of 8 subrecipients, 2 subrecipients were selected for testing. For the 2 subrecipients, the agreement with the subrecipient was missing information that is required to be communicated with the subrecipient to ensure compliance with federal requirements. Additionally, for the 2 subrecipients, audit reports were not obtained by the pass-through entity during the reporting period to ensure proper use of funding received and proper monitoring of the subaward. Our sample was not and was not intended to be statistically valid. Identification as a repeat finding, if applicable – N/A Recommendation – The organization should ensure agreements with subrecipients include all information required to be communicated to the subrecipient for the subaward. The organization should put controls in place to ensure that monitoring activities are tailored to this risk of each subrecipient and appropriately followed in alignment with what is required. Views of Responsible Officials and Planned Corrective Actions – Management agrees with finding. Management plans to develop a subrecipient monitoring policy aligned with 2 CFR 200.331-333. Management will also standardize agreement templates to include all required clauses for federal award subrecipient agreements, implement a subrecipient risk assessment tool to determine monitoring frequency and risk level identification, and assign staff for annual subrecipient desk reviews or site visits based on risk levels.
Assistance Listing Number: 93.193 Name of Federal Program: COVID-19 Urban Indian Health Services Name of Federal Agency: Department of Health and Human Services Award Period: January 1, 2024 – December 31, 2024 Criteria or Specific Requirement: Per 2 CFR Part 200, non-federal entities receiving federal awards must establish and maintain written policies and procedures addressing areas including, but not limited to: procurement (§200.317–§200.327); travel costs (§200.475); methods for avoiding duplication of costs (§200.403); subrecipient monitoring (§200.332); cash management and allowable costs (§200.302, §200.305). Condition: The organization has not implemented all policies and procedures required under the Uniform Guidance. Specifically, certain written policies and procedures required by 2 CFR Part 200, such as cash management, allowability of costs, equipment management, conflict of interest, procurement, travel, compensation, and fringe benefits, were either incomplete, not formally documented, or not in place during the audit period. Cause: The Council has not detailed its policies to conform with the requirements of the Uniform Guidance. Effect or Potential Effect: Without documented and implemented policies and procedures, the organization increases the risk of noncompliance with federal regulations, inconsistent application of requirements, unallowable costs being charged to federal awards, and potential questioned costs or sanctions from funding agencies. Repeat Finding: No Recommendation: Management should develop, formally adopt, and implement all required Uniform Guidance policies and procedures. Policies should be documented, communicated to relevant staff, and periodically reviewed to ensure ongoing compliance. Views of Responsible Officials: Management agrees with the finding and revise its policies and procedures to meet the criteria of the Uniform Guidance.
Assistance Listing Number: 93.193 Name of Federal Program: COVID-19 Urban Indian Health Services Name of Federal Agency: Department of Health and Human Services Award Period: January 1, 2024 – December 31, 2024 Criteria or Specific Requirement: Per 2 CFR Part 200, non-federal entities receiving federal awards must establish and maintain written policies and procedures addressing areas including, but not limited to: procurement (§200.317–§200.327); travel costs (§200.475); methods for avoiding duplication of costs (§200.403); subrecipient monitoring (§200.332); cash management and allowable costs (§200.302, §200.305). Condition: The organization has not implemented all policies and procedures required under the Uniform Guidance. Specifically, certain written policies and procedures required by 2 CFR Part 200, such as cash management, allowability of costs, equipment management, conflict of interest, procurement, travel, compensation, and fringe benefits, were either incomplete, not formally documented, or not in place during the audit period. Cause: The Council has not detailed its policies to conform with the requirements of the Uniform Guidance. Effect or Potential Effect: Without documented and implemented policies and procedures, the organization increases the risk of noncompliance with federal regulations, inconsistent application of requirements, unallowable costs being charged to federal awards, and potential questioned costs or sanctions from funding agencies. Repeat Finding: No Recommendation: Management should develop, formally adopt, and implement all required Uniform Guidance policies and procedures. Policies should be documented, communicated to relevant staff, and periodically reviewed to ensure ongoing compliance. Views of Responsible Officials: Management agrees with the finding and revise its policies and procedures to meet the criteria of the Uniform Guidance.
Finding 2024-001: Subrecipient Monitoring Federal Agency: U.S. Department of Housing and Urban Development Program Name: COVID 19 – HOME Investment Partnerships Program and HOME Investment Partnerships Program (HOME) - ALN 14.239; Award Identification Number: MC420501 Criteria of Specific Requirement: Per 2 CFR 200.332, a pass-through entity must monitor the activities of subrecipients as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations, and the terms and conditions of the subaward. Condition: During our testing of subrecipient monitoring, we noted that the City did not perform required monitoring procedures during the year. Questioned Costs: Unknown Cause: The City did not have adequate internal controls in place to ensure compliance with subrecipient monitoring requirements, and staffing turnover contributed to the lack of oversight. Effect: The City was not in compliance with subrecipient monitoring requirements. Identification as a Repeat Finding: This is not a repeat finding from the prior audit. Recommendation: We recommend the City implement controls to ensure compliance with subrecipient monitoring, documenting monitoring activities performed and following up on any identified deficiencies in a timely manner. Views of Responsible Officials and Planned Corrective Actions: Management agrees; see separate corrective action plan.
Finding 2024-001: Subrecipient Monitoring Federal Agency: U.S. Department of Housing and Urban Development Program Name: COVID 19 – HOME Investment Partnerships Program and HOME Investment Partnerships Program (HOME) - ALN 14.239; Award Identification Number: MC420501 Criteria of Specific Requirement: Per 2 CFR 200.332, a pass-through entity must monitor the activities of subrecipients as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations, and the terms and conditions of the subaward. Condition: During our testing of subrecipient monitoring, we noted that the City did not perform required monitoring procedures during the year. Questioned Costs: Unknown Cause: The City did not have adequate internal controls in place to ensure compliance with subrecipient monitoring requirements, and staffing turnover contributed to the lack of oversight. Effect: The City was not in compliance with subrecipient monitoring requirements. Identification as a Repeat Finding: This is not a repeat finding from the prior audit. Recommendation: We recommend the City implement controls to ensure compliance with subrecipient monitoring, documenting monitoring activities performed and following up on any identified deficiencies in a timely manner. Views of Responsible Officials and Planned Corrective Actions: Management agrees; see separate corrective action plan.
2024-001: Subrecipient Monitoring – Low Income Home Energy Assistance Program Federal Program: Low Income Home Energy Assistance/COVID-19 – Low Income Home Energy Assistance– American Rescue Plan Act Assistance Listing No.: 93.568 Federal Agency: U.S. Department of Health and Human Services Pass-Through Entity: None Federal Award Identification Number: 2401MELIEA/2501MELIEA/2401MELIEI/COVID-19 2101MEE5C6 Repeat Finding: This is not a repeat finding Criteria – CFR 200.332 states that pass-through entities must evaluate each subrecipient’s risk of noncompliance with federal statutes, regulations, and the terms and conditions of the subaward for purposes of determining the appropriate subrecipient monitoring. Pass-through entities must also monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations, and the terms and conditions of the subaward and that subaward performance goals are achieved. MaineHousing performs annual quality assurance reviews over subrecipients for the Low Income Home Energy Assistance (LIHEAP) Program to ensure source documentation for determining benefits is accurate. In addition, MaineHousing performs annual fiscal monitoring reviews for subrecipients participating in the LIHEAP Program. Condition – During 2024, for two subrecipients, MaineHousing did not perform annual quality assurance reviews. For one high-risk subrecipient, MaineHousing did not formally document their fiscal monitoring review. Questioned costs – None. Cause – MaineHousing did not perform annual quality assurance reviews for two subrecipients due to staff turnover in the program. The annual fiscal monitoring review was not formally documented for one high-risk subrecipient as the subrecipient did not have an annual audit performed for the fiscal year. Effect or potential effect – There is a risk that LIHEAP benefits may not be properly calculated and beneficiaries may not have provided proper support in their request for benefits. Context – The sample of subrecipients was a statistically valid sample. Recommendation – MaineHousing should enhance controls to ensure that all subrecipients undergo required quality assurance reviews annually. If fiscal monitoring reviews are not applicable to certain subrecipients, management should document what steps were taken to supplant the monitoring reviews to ensure that the subrecipient was appropriately monitored and reviewed. Views of responsible officials – Management’s response is included in “Management’s Views and Corrective Action Plan” included at the end of this report after the Summary Schedule of Prior Audit Findings.
2024-001: Subrecipient Monitoring – Low Income Home Energy Assistance Program Federal Program: Low Income Home Energy Assistance/COVID-19 – Low Income Home Energy Assistance– American Rescue Plan Act Assistance Listing No.: 93.568 Federal Agency: U.S. Department of Health and Human Services Pass-Through Entity: None Federal Award Identification Number: 2401MELIEA/2501MELIEA/2401MELIEI/COVID-19 2101MEE5C6 Repeat Finding: This is not a repeat finding Criteria – CFR 200.332 states that pass-through entities must evaluate each subrecipient’s risk of noncompliance with federal statutes, regulations, and the terms and conditions of the subaward for purposes of determining the appropriate subrecipient monitoring. Pass-through entities must also monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, in compliance with federal statutes, regulations, and the terms and conditions of the subaward and that subaward performance goals are achieved. MaineHousing performs annual quality assurance reviews over subrecipients for the Low Income Home Energy Assistance (LIHEAP) Program to ensure source documentation for determining benefits is accurate. In addition, MaineHousing performs annual fiscal monitoring reviews for subrecipients participating in the LIHEAP Program. Condition – During 2024, for two subrecipients, MaineHousing did not perform annual quality assurance reviews. For one high-risk subrecipient, MaineHousing did not formally document their fiscal monitoring review. Questioned costs – None. Cause – MaineHousing did not perform annual quality assurance reviews for two subrecipients due to staff turnover in the program. The annual fiscal monitoring review was not formally documented for one high-risk subrecipient as the subrecipient did not have an annual audit performed for the fiscal year. Effect or potential effect – There is a risk that LIHEAP benefits may not be properly calculated and beneficiaries may not have provided proper support in their request for benefits. Context – The sample of subrecipients was a statistically valid sample. Recommendation – MaineHousing should enhance controls to ensure that all subrecipients undergo required quality assurance reviews annually. If fiscal monitoring reviews are not applicable to certain subrecipients, management should document what steps were taken to supplant the monitoring reviews to ensure that the subrecipient was appropriately monitored and reviewed. Views of responsible officials – Management’s response is included in “Management’s Views and Corrective Action Plan” included at the end of this report after the Summary Schedule of Prior Audit Findings.
REFERENCE NUMBER 2024-002 Subrecipient Monitoring FEDERAL AGENCY Department of Transportation FEDERAL PROGRAM Formula Grants for Rural Areas and Tribal Transit Program ALN 20.509 IDENTIFICATION AS A REPEAT FINDING No QUESTIONED COSTS None EVALUATION OF FINDING Audit finding disclosed that are required to be reported in accordance with Title 2 U.S. Code of Federal Regulations (CFR) Part 200, Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance). CRITERIA The Uniform Guidance at 2 CFR section 200.332(c) requires ECCOG as the pass-through entity to assess the subrecipient's fraud risk and risk of noncompliance to determine the appropriate level of subrecipient monitoring. The Uniform Guidance at 2 CFR 332(e) requires the pass-through entity to review financial and performance reports and ensure the subrecipient takes appropriate corrective action. Finally, the Uniform Guidance at 2 CFR 332(f) requires the pass-through to perform additional monitoring based on its risk analysis. CONDITION ECCOG did not perform a formal risk assessment of its subrecipients. ECCOG did not document the required level of subrecipient monitoring. ECCOG did not review financial reports. One entity had a Single Audit for the year-ended December 31, 2023. ECCOG did input the subrecipient's statistics into the Colorado Department of Transportation's COTRAMS system. CONTEXT ECCOG had three subrecipients, two of which were material. This finding occurred for all three subrecipients. CAUSE ECCOG performed an informal analysis of the entities' risks. In addition, during the years-ended December 31, 2023 and 2024 reimbursement of subrecipient costs was being resolved with the Colorado Department of Transportation (CDOT). Certain 2023 costs were not reimbursed until 2024. CDOT did not agree to pay the subrecipient costs for the period March, 2024 to December 2024 until January 2025. In 2025, these entities are no longer subrecipients of ECCOG. The two significant subrecipients are now subrecipients of CDOT. EFFECT OR POTENTIAL EFFECT Failure to adequately perform and document the risk assessments on its subrecipients could result in the inadequate monitoring of the activities and performance of a subrecipient. Also, this could result in Federal awards being used by the subrecipient for unauthorized purposes. RECOMMENDATION As noted above, ECCOG no longer has any subrecipients. ECCOG should document the necessary processes for subrecipient monitoring in its grant management policies. VIEWS OF RESPONSIBLE OFFICIALS AND PLANNED CORRECTIVE ACTION See ECCOG’s corrective action plan on page 16.
2024-002 Finding – Federal Award Type: Subrecipient Monitoring – Non-Compliance and Significant Deficiency in Internal Control Over Compliance. (Partial repeat of finding 2023-001) Identification of Federal Program: AL Number: 81.086 Conservation Research and Development Program Criteria / Requirement: 2 CFR section 200.303 requires that non-federal entities receiving federal awards establish and maintain internal control over the federal awards that provides reasonable assurance that the non-federal entity is managing the federal awards in compliance with federal statutes, regulations, and the terms and conditions of the federal awards. In accordance with 2 CFR section 200.332, a pass-through entity must clearly identify to the subrecipient the award as a subaward by providing the required federal information related to the award, all requirements imposed by the pass-through entity on the subrecipient so that the federal award is used in accordance with federal statutes, regulations, and the provisions of contracts and grants agreements. The pass-through entity must evaluate risk of non-compliance of each subrecipient, monitoring the subrecipient and ensuring accountability of for-profit subrecipients. Condition / Context: Forth Mobility Fund passed through $1,578,580 in funding to subrecipients under Assistance Listing 81.086. During our audit, we noted that Forth Mobility Fund had made improvements to subrecipient monitoring in 2024 by establishing a subrecipient monitoring policy and evaluating for risk of non-compliance for subrecipients prior to engaging in a subcontract on a prospective basis. It was noted that within subaward contracts, required federal contract information was provided and if the subrecipient is subject to 2 CFR Subpart F, the audit for this entity was obtained and reviewed for applicable audit findings. However, while monitoring has improved, as Forth Mobility Fund is having regular meetings to ensure tasks are being completed timely and providing technical assistance when needed, there is no formal documentation of this. Further, while a risk assessment is being made for new subrecipients, past subrecipients have not been evaluated and there is no methodical execution of the results of the risk assessment. Cause: Procedures were not in place to ensure that Forth Mobility Fund is maintaining proper subrecipient monitoring for each federal subrecipient. Effect: Failure to maintain sufficient subrecipient monitoring may result in the wrongful use of federal funds and non‐compliance with the provisions of applicable requirements of the federal award. Questioned Costs: None. Recommendation: The Organization should establish written policies and procedures regarding the contracting and monitoring of subrecipients that are in line with Uniform Guidance requirements, as well as establish organizational controls to ensure that such policies and procedures are prescriptive and being followed. Management’s Response: We agree with the auditor's comments, and effective October 31, 2024, we established procedures for monitoring subrecipients, including obtaining and reviewing their annual audits. We will strengthen these procedures by establishing a monitoring plan based on risk assessment for each subrecipient and formally documenting all monitoring activities by November 30, 2025
FINDING 2024-002 Significant Deficiency in Internal Controls Over Compliance, Noncompliance – Subrecipient Monitoring Federal Agency: U.S. Department of Agriculture Pass through Grantor: Not Applicable – Direct Award Federal Program: Soil and Water Conservation Assistance Listing Number: 10.902 Federal Award Identification Number: NR243A750023C002, NR243A750023C003 Criteria: Per 2 CFR Part 200, Subpart D, 200.332(c), the pass-through entity ("PTE") must evaluate each subrecipient's fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring. Further, in accordance with 2 CFR, Subpart D, Section 200.332(e), the PTE must monitor the activities of the subrecipient including ensuring that the subrecipient takes corrective action on findings. Lastly, per 2 CFR, Subpart D, Section 200.332(g), the PTE must verify that the subrecipient is audited as required by Subpart D. Condition/Context: Through Subrecipient Monitoring testing, we identified 2 subrecipients, both of which were selected for testing. The subrecipients expended $96,462 of federal award funding passed through to them from Ichauway for the year ended December 31, 2024. For both subrecipients, we determined that management did not monitor the subrecipients to ensure the subrecipient took corrective action on any findings nor did management verify that the subrecipient was audited as required by Subpart D. Cause: Management has not updated their subrecipient monitoring procedures to ensure it aligns with federal requirements. Effect: Without formal procedures or documented communications to verify that subrecipients are aware of, have completed, and have addressed any deficiencies identified in required audits, there is a risk that audit findings or compliance issues at the subrecipient level may go undetected or unaddressed. This could result in noncompliance with federal subrecipient monitoring requirements, potentially exposing Ichauway to reputational risk, questioned costs, or other adverse consequences in the event of a review or audit. Questioned Costs: None. Recommendation: Management should develop and implement formal procedures for subrecipient monitoring. This should include documented communications to verify that subrecipients are aware of audit requirements, have completed required audits, and have addressed any identified deficiencies in a timely manner. Views of Responsible Officials: See Corrective Action Plan.
FINDING 2024-002 Significant Deficiency in Internal Controls Over Compliance, Noncompliance – Subrecipient Monitoring Federal Agency: U.S. Department of Agriculture Pass through Grantor: Not Applicable – Direct Award Federal Program: Soil and Water Conservation Assistance Listing Number: 10.902 Federal Award Identification Number: NR243A750023C002, NR243A750023C003 Criteria: Per 2 CFR Part 200, Subpart D, 200.332(c), the pass-through entity ("PTE") must evaluate each subrecipient's fraud risk and risk of noncompliance with a subaward to determine the appropriate subrecipient monitoring. Further, in accordance with 2 CFR, Subpart D, Section 200.332(e), the PTE must monitor the activities of the subrecipient including ensuring that the subrecipient takes corrective action on findings. Lastly, per 2 CFR, Subpart D, Section 200.332(g), the PTE must verify that the subrecipient is audited as required by Subpart D. Condition/Context: Through Subrecipient Monitoring testing, we identified 2 subrecipients, both of which were selected for testing. The subrecipients expended $96,462 of federal award funding passed through to them from Ichauway for the year ended December 31, 2024. For both subrecipients, we determined that management did not monitor the subrecipients to ensure the subrecipient took corrective action on any findings nor did management verify that the subrecipient was audited as required by Subpart D. Cause: Management has not updated their subrecipient monitoring procedures to ensure it aligns with federal requirements. Effect: Without formal procedures or documented communications to verify that subrecipients are aware of, have completed, and have addressed any deficiencies identified in required audits, there is a risk that audit findings or compliance issues at the subrecipient level may go undetected or unaddressed. This could result in noncompliance with federal subrecipient monitoring requirements, potentially exposing Ichauway to reputational risk, questioned costs, or other adverse consequences in the event of a review or audit. Questioned Costs: None. Recommendation: Management should develop and implement formal procedures for subrecipient monitoring. This should include documented communications to verify that subrecipients are aware of audit requirements, have completed required audits, and have addressed any identified deficiencies in a timely manner. Views of Responsible Officials: See Corrective Action Plan.
Community Health Workers for Public Health Response & Resilient AL #93.495 Subrecipient Monitoring Condition: The Allegheny County Health Department did not communicate to three subrecipients randomly selected for testing all of the information required to be communicated about the subawards. It appears that the Health Department does not have a process in place to communicate such information. The Health Department did not determine whether the three subrecipients we randomly selected for testing were required to obtain single audits and did not request or review such audits. We were also informed that the Health Department did not determine whether any of the subrecipients involved in the administration of the program required single audits and did not request or review such audits from any of the subrecipients. Criteria: The Uniform Guidance indicates that all pass-through entities must verify that every subrecipient is audited as required when it is expected that the subrecipient's federal awards expended during the respective fiscal year equaled or exceeded the applicable threshold (2 CFR 200.332(f)) and consider whether the results of the subrecipient's audits, on-site reviews, or other monitoring indicate conditions that necessitate adjustments to the pass-through entity's own records (2 CFR 200.332(g)). Cause: This subrecipient monitoring was also a prior 2023 finding. The Health Department developed the corrective action plan for the prior finding on September 20, 2024, however, this grant ended on August 30, 2024 and the Health Department did not have the time to implement any of the corrective action plans for this program. In addition, the Health Department does not have proper internal controls in place to ensure they are complying with all audit requirements. Effect: The County was not in compliance with the terms of the federal grant program. Questioned Costs: None Recommendation: The Health Department should maintain lists of the subrecipients utilized for each federal program and use checklists to help ensure that the required subrecipient monitoring activities are performed for each subrecipient to ensure compliance with federal requirements. Management Response: Management agrees with the finding, see attached Corrective Action Plan.
Targeted Airshed Grant Program- AL# 66.956 Subrecipient Monitoring Condition: The Allegheny County Health Department did not communicate to Pittsburgh Regional Transit (PRT) all of the information required to be communicated about the subaward. It appears that the Health Department does not have a process in place to communicate such information. The Health Department also did not determine whether PRT was required to obtain a single audit and did not request or review such an audit. Consequently, the Health Department has no knowledge of any subrecipient single audit findings that may impact the federal award. Criteria: The Uniform Guidance indicates that all pass-through entities must verify that every subrecipient is audited as required when it is expected that the subrecipient's federal awards expended during the respective fiscal year equaled or exceeded the applicable threshold (2 CFR 200.332(f)) and consider whether the results of the subrecipient's audits, on-site reviews, or other monitoring indicate conditions that necessitate adjustments to the pass-through entity's own records (2 CFR 200.332(g)). Cause: The Health Department was not attentive to the audit requirements. Effect: The County was not in compliance with the terms of the federal grant program. Questioned Costs: None Recommendation: The Health Department should maintain lists of the subrecipients utilized for each federal program and use checklists to help ensure that the required subrecipient monitoring activities are performed for each subrecipient to ensure compliance with federal program requirements. Management Response: Management agrees with the finding, see attached Corrective Action Plan.
Noncompliance with Subrecipient Monitoring Requirements and Material Weakness in Internal Control over Subrecipient Monitoring Assistance Listing Number: 21.027 Name of Federal Program or Cluster: COVID-19: Coronavirus State and Local Fiscal Recovery Funds Name of Federal Agency: Department of Treasury Name of Pass-Through Entities: State of Wisconsin Department of Administration Subrecipient Monitoring 2 CFR§200.332 requirements for pass-through entities: The Code of Federal Regulations (CFR) Section 200.332(e) requires a pass-through entity must monitor the activities of a subrecipient as necessary to ensure that the subrecipient complies with Federal statutes, regulations, and the terms and conditions of the subaward. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. In monitoring a subrecipient, a pass-through entity must: (1) Review financial and performance reports. (2) Ensure that the subrecipient takes corrective action on all significant developments that negatively affect the subaward. Significant developments include Single Audit findings related to the subaward, other audit findings, site visits, and written notifications from a subrecipient of adverse conditions which will impact their ability to meet the milestones or the objectives of a subaward. (3) Issue a management decision for audit findings pertaining only to the Federal award provided to the subrecipient from the pass-through entity as required by §200.521. (4) Resolve audit findings specifically related to the subaward. 2 CFR§200.303 requires the Organization to establish, document, and maintain effective internal control over the Federal award that provides reasonable assurance that the recipient or subrecipient is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should align with the guidance in “Standards for Internal Control in the Federal Government” issued by the Comptroller General of the United States or the “Internal Control-Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). The organization did not perform subrecipient monitoring procedures as listed in the criteria above for the subrecipient of the COVID-19: Coronavirus State and Local Fiscal Recovery Funds. In addition, the Organization’s internal controls over subrecipient monitoring did not prevent or detect noncompliance with subrecipient monitoring requirements. The Organization did, however, confirm with SAM.gov that the subrecipient is not suspended, debarred, or otherwise excluded from receiving Federal Funds; included the required information in the subaward agreement, and performed the required risk assessment. The Organization has policies and procedures related to subrecipient monitoring in its fiscal procedures manual. However, management did not monitor to ensure that the requirements listed in its policies and procedures manual as well as the Uniform Guidance are being followed. Failure to adequately monitor subrecipients may result in the subrecipient not properly administering the federal program in accordance with laws, regulations, and the grant agreement. Recommendation: We recommend that Organization management monitor their compliance with their subrecipient monitoring procedures to ensure that the required subrecipient monitoring is occurring. No WRTP has reviewed the organization’s fiscal policy manual including all subsections regarding monitoring responsibilities. Additional training has been provided and completed by management and staff. Management has reviewed all monitoring with the subrecipient in good faith efforts.
Noncompliance with Subrecipient Monitoring Requirements and Material Weakness in Internal Control over Subrecipient Monitoring Assistance Listing Number: 21.027 Name of Federal Program or Cluster: COVID-19: Coronavirus State and Local Fiscal Recovery Funds Name of Federal Agency: Department of Treasury Name of Pass-Through Entities: State of Wisconsin Department of Administration Subrecipient Monitoring 2 CFR§200.332 requirements for pass-through entities: The Code of Federal Regulations (CFR) Section 200.332(e) requires a pass-through entity must monitor the activities of a subrecipient as necessary to ensure that the subrecipient complies with Federal statutes, regulations, and the terms and conditions of the subaward. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. In monitoring a subrecipient, a pass-through entity must: (1) Review financial and performance reports. (2) Ensure that the subrecipient takes corrective action on all significant developments that negatively affect the subaward. Significant developments include Single Audit findings related to the subaward, other audit findings, site visits, and written notifications from a subrecipient of adverse conditions which will impact their ability to meet the milestones or the objectives of a subaward. (3) Issue a management decision for audit findings pertaining only to the Federal award provided to the subrecipient from the pass-through entity as required by §200.521. (4) Resolve audit findings specifically related to the subaward. 2 CFR§200.303 requires the Organization to establish, document, and maintain effective internal control over the Federal award that provides reasonable assurance that the recipient or subrecipient is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should align with the guidance in “Standards for Internal Control in the Federal Government” issued by the Comptroller General of the United States or the “Internal Control-Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). The organization did not perform subrecipient monitoring procedures as listed in the criteria above for the subrecipient of the COVID-19: Coronavirus State and Local Fiscal Recovery Funds. In addition, the Organization’s internal controls over subrecipient monitoring did not prevent or detect noncompliance with subrecipient monitoring requirements. The Organization did, however, confirm with SAM.gov that the subrecipient is not suspended, debarred, or otherwise excluded from receiving Federal Funds; included the required information in the subaward agreement, and performed the required risk assessment. The Organization has policies and procedures related to subrecipient monitoring in its fiscal procedures manual. However, management did not monitor to ensure that the requirements listed in its policies and procedures manual as well as the Uniform Guidance are being followed. Failure to adequately monitor subrecipients may result in the subrecipient not properly administering the federal program in accordance with laws, regulations, and the grant agreement. Recommendation: We recommend that Organization management monitor their compliance with their subrecipient monitoring procedures to ensure that the required subrecipient monitoring is occurring. No WRTP has reviewed the organization’s fiscal policy manual including all subsections regarding monitoring responsibilities. Additional training has been provided and completed by management and staff. Management has reviewed all monitoring with the subrecipient in good faith efforts.
Noncompliance with Subrecipient Monitoring Requirements and Material Weakness in Internal Control over Subrecipient Monitoring Assistance Listing Number: 21.027 Name of Federal Program or Cluster: COVID-19: Coronavirus State and Local Fiscal Recovery Funds Name of Federal Agency: Department of Treasury Name of Pass-Through Entities: State of Wisconsin Department of Administration Subrecipient Monitoring 2 CFR§200.332 requirements for pass-through entities: The Code of Federal Regulations (CFR) Section 200.332(e) requires a pass-through entity must monitor the activities of a subrecipient as necessary to ensure that the subrecipient complies with Federal statutes, regulations, and the terms and conditions of the subaward. The pass-through entity is responsible for monitoring the overall performance of a subrecipient to ensure that the goals and objectives of the subaward are achieved. In monitoring a subrecipient, a pass-through entity must: (1) Review financial and performance reports. (2) Ensure that the subrecipient takes corrective action on all significant developments that negatively affect the subaward. Significant developments include Single Audit findings related to the subaward, other audit findings, site visits, and written notifications from a subrecipient of adverse conditions which will impact their ability to meet the milestones or the objectives of a subaward. (3) Issue a management decision for audit findings pertaining only to the Federal award provided to the subrecipient from the pass-through entity as required by §200.521. (4) Resolve audit findings specifically related to the subaward. 2 CFR§200.303 requires the Organization to establish, document, and maintain effective internal control over the Federal award that provides reasonable assurance that the recipient or subrecipient is managing the Federal award in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. These internal controls should align with the guidance in “Standards for Internal Control in the Federal Government” issued by the Comptroller General of the United States or the “Internal Control-Integrated Framework” issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO). The organization did not perform subrecipient monitoring procedures as listed in the criteria above for the subrecipient of the COVID-19: Coronavirus State and Local Fiscal Recovery Funds. In addition, the Organization’s internal controls over subrecipient monitoring did not prevent or detect noncompliance with subrecipient monitoring requirements. The Organization did, however, confirm with SAM.gov that the subrecipient is not suspended, debarred, or otherwise excluded from receiving Federal Funds; included the required information in the subaward agreement, and performed the required risk assessment. The Organization has policies and procedures related to subrecipient monitoring in its fiscal procedures manual. However, management did not monitor to ensure that the requirements listed in its policies and procedures manual as well as the Uniform Guidance are being followed. Failure to adequately monitor subrecipients may result in the subrecipient not properly administering the federal program in accordance with laws, regulations, and the grant agreement. Recommendation: We recommend that Organization management monitor their compliance with their subrecipient monitoring procedures to ensure that the required subrecipient monitoring is occurring. No WRTP has reviewed the organization’s fiscal policy manual including all subsections regarding monitoring responsibilities. Additional training has been provided and completed by management and staff. Management has reviewed all monitoring with the subrecipient in good faith efforts.
2024-001: Subrecipient Monitoring Criteria: The Code of Federal Regulations 2 CFR 200.332 states that all pass-through entities (PTE) must: Identify the Award and Applicable Requirements - Clearly identify to the subrecipient: (1) the award as a subaward at the time of subaward (or subsequent subaward modification) by providing the information described in 2 CFR section 200.331(a)(1); (2)all requirements imposed by the PTE on the subrecipient so that the federal award is used in accordance with federal statutes, regulations, and the terms and conditions of the award (2 CFR section 200.331(a)(2)); and (3) any additional requirements that the PTE imposes on the subrecipient in order for the PTE to meet its own responsibility for the federal award (e.g., financial, performance, and special reports) (2 CFR section 200.331(a)(3)). Evaluate Risk - Evaluate each subrecipient’s risk of noncompliance for purposes of determining the appropriate subrecipient monitoring related to the subaward (2 CFR section 200.332(b)). Monitor - Monitor the activities of the subrecipient as necessary to ensure that the subaward is used for authorized purposes, complies with the terms and conditions of the subaward, and achieves performance goals (2 CFR sections 200.332(d) through (f)). In addition to procedures identified as necessary based upon the evaluation of subrecipient risk or specifically required by the terms and conditions of the award, subaward monitoring must include the following: (1) Reviewing financial and programmatic (performance and special reports) required by the PTE. (2) Following-up and ensuring that the subrecipient takes timely and appropriate action on all deficiencies pertaining to the federal award provided to the subrecipient from the PTE detected through audits, on-site reviews, and other means. (3) Issuing a management decision for audit findings pertaining to the federal award provided to the subrecipient from the PTE as required by 2 CFR section 200.521. Condition: The Organization did not clearly communicate the required federal award information and applicable requirements to the subrecipients. The Organization did not evaluate the risk of non-compliance of the subrecipients in order to identify the appropriate monitoring procedures. Cause: The Organization has not implemented policies or procedures, to the degree necessary, to ensure that federal award monitoring compliance requirements are being met. Effect: The Organization did not perform adequate monitoring procedures on the subrecipients. Without communication of required information, subrecipients may overspend award amounts or incur unallowable expenses towards the grant. Questioned Costs: N/A Statistical Sampling: Statistical sampling was not used in making sample selections. Recommendation: We recommend that management of the Organization implement policies, procedures, and internal controls to evaluate the subrecipient risk of noncompliance to ensure subrecipients are being appropriately monitored in compliance with federal regulations. Views of Responsible Officials: Management agrees with this finding and their response is included in the corrective action plan.
2024-005 Corporation for National and Community Service Federal Financial Assistance Listing #94.012, 22BIICA001 10/1/2022 – 9/30/2025, 23BIACA001 10/1/2023 – 9/30/2026, 23BIFNY001 10/1/2023 – 9/30/2026 Americorps September 11th National Day of Service and Remembrance Grants Subrecipient Monitoring Material Weakness in Internal Controls over Compliance and Material Noncompliance Criteria: 2 CFR 200.303(a) establishes that the auditee must establish and maintain effective internal control over the federal award that provides assurance that the entity is managing the federal award in compliance with federal statutes, regulations, and conditions of the federal award. 2 CFR 200.332 identifies the requirements for all pass-through entities surrounding subrecipient monitoring and management. Condition: We noted the following during testing; a) Subawards did not contain minimum required elements in accordance with 2 CFR 200.332(b) b) The organization did not consider all suggested elements when evaluating subgrantee’s fraud risk and risk of noncompliance with subaward in accordance with 2 CFR 200.332(c) c) Documentation could not be provided to substantiate whether suspension and debarment was considered prior to awarding subgrant d) The organization required the subgrantee to complete performance reports, however, did not require completion of a financial report in accordance with 2 CFR 200.332(e)(1) e) The organization did not considered whether subgrantee was required to be audited and therefore did not review whether subgrantee had deficiencies reported over the federal program in accordance with 2 CFR 200.332(e)(2) through 2 CFR 200.332(e)(4) Cause: Management was not familiar with all subrecipient monitoring requirements as published under 2 CFR 200.332. The organization has not adopted a subrecipient monitoring policy. Effect: Without full understanding of subrecipient monitoring requirements under 2 CFR 200.332, demonstrating that the program complies with laws, regulations, and other compliance requirements is difficult. Questioned Costs: None reported. Context/Sampling: Four out of seventeen subrecipients were reviewed for testing. Repeat Finding from Prior Year: No. Recommendation: We recommend management to review subrecipient monitoring requirements as published under 2 CFR 200.332 and adopt a subrecipient monitoring policy. Views of Responsible Officials: Management is in agreement.
Criteria or Specific Requirement: Per 2 CFR 200.332(b), Pass-through entities are responsible for identifying all the information in the subaward agreement to the subrecipients to provide reasonable assurance that subrecipient used the subaward for authorized purposes in compliance with federal statutes, regulations, and the terms and conditions of the subaward. Condition: The sole subaward issued under the federal program lacked key information identifying the recipient as a subrecipient of federal funding. Questioned Costs: None Context: There was only one subrecipient and subaward agreement lacking the key information outlined in 2 CFR 200.332(b). This subrecipient was started by former SFP employees and contractors and was only later split off as a separate legal entity. The intermingled nature of the original relationship of the subrecipient’s projects lead to the lack of formalized information in the subaward. Cause: Lack of adequate knowledge about the information required to be included in subaward agreements, per Uniform Guidance requirements. Effect: A lack of clear identification of federal funding in a subaward could lead to a subrecipient misunderstanding the nature of the funding sources it receives and the corresponding single audit requirements. Repeat Finding: No Recommendation: CLA recommends amending existing subaward agreements to include the award information required by CFR 200.332(b) and to verify all future subawards agreements include all necessary information prior to issuance. Views of Responsible Officials: There is no disagreement with the audit finding.